Sélectionner vos préférences de cookies

Nous utilisons des cookies essentiels et des outils similaires qui sont nécessaires au fonctionnement de notre site et à la fourniture de nos services. Nous utilisons des cookies de performance pour collecter des statistiques anonymes afin de comprendre comment les clients utilisent notre site et d’apporter des améliorations. Les cookies essentiels ne peuvent pas être désactivés, mais vous pouvez cliquer sur « Personnaliser » ou « Refuser » pour refuser les cookies de performance.

Si vous êtes d’accord, AWS et les tiers approuvés utiliseront également des cookies pour fournir des fonctionnalités utiles au site, mémoriser vos préférences et afficher du contenu pertinent, y compris des publicités pertinentes. Pour accepter ou refuser tous les cookies non essentiels, cliquez sur « Accepter » ou « Refuser ». Pour effectuer des choix plus détaillés, cliquez sur « Personnaliser ».

Préférences
Contactez-nous
Commentaire
AWS Documentation
Créer un compte AWS

Patch management in AMS

PDF
RSS
Mode de mise au point
Patch management in AMS - AMS Advanced User Guide
On-demand patching
Cette page n'a pas été traduite dans votre langue. Demande de traduction
Topics

In AMS, patch management is a service that helps you maintain OS vendor updates on your Amazon Elastic Compute Cloud (Amazon EC2) instances. You have the freedom to customize the frequency and process of patching your Amazon EC2 instances.

You configure patch management during onboarding, and you can update it by using the RFC process. Stacks created using the change management system and a patch-compatible template (for Amazon EC2, Auto Scaling group, HA one-tier or two-tier stack) are subscribed to patch management automatically.

AMS provides a feature, Patch Orchestrator – tag-based patching, for configuring patching.

For definitions of patching terms, see AMS key terms.

Important

  • It's not possible for stacks or a stack's constituent instances to opt out of patch management, if the AMS template from which the stack is created is compatible with patch management. Currently, patching is compatible with the following stack templates:

    • Amazon EC2 stack | Create, and Amazon EC2 stack | Create (with additional volumes)

    • Amazon EC2 instance launched with AWS CloudFormation ingest

    • Auto Scaling group | Create (the Amazon EC2 instances in the group are patched)

    • High Availability One-Tier stack | Create, and High Availability Two-Tier stack | Create

  • If there is an ongoing incident that affects a stack, AMS operators can reschedule or cancel scheduled patching.

  • By default, all instances within a particular patch-compatible stack are patched in-place. To patch Auto Scaling groups with an Amazon Machine Image (AMI) replacement using the latest/patched AMS AMI, submit a service request. Updated AMIs are shared to accounts every month.

Tip

AMS recommends that you enable backups for instances that have valuable applications or services. For information about enabling backups, see Continuity management in AMS Advanced.

On-demand patching

AMS has a change type that works with your patch baseline, to enable you to run a patch on instances on demand. This can be either the default baseline you set at on boarding, or the Patch Orchestrator Systems Manager patch baseline that you set with the Patch Baseline change type (CT ID varies per operating system).

You can use the on-demand patching change type with or without Patch Orchestrator.

For information about using this change type, see On Demand Patching | Run.

Note

You can't use instances that are part of an Auto Scaling group in an on-demand patching change type.

Sur cette page

ConfidentialitéConditions d'utilisation du sitePréférences de cookies
© 2025, Amazon Web Services, Inc. ou ses affiliés. Tous droits réservés.